
CLAIMS 



1 1 . A local computer network for packets delivery with headers that contain logical and 

2 physical addresses of senders and/or receivers of information and a network screen that 

3 splits it to at least two segments and represents a complex of hardware and software 

4 means and contains at least two network interfaces for packets exchange between the 

5 network segments and a program that controls the process of packets commutation 

6 between the network interfaces based on the filtration rules that do not name logical 

7 addresses to the network interfaces and do not send their physical addresses to the net and 

8 at the same time permit a transit delivery through the network interfaces of the network 

9 screen only to the packets with the headers that passed the test in accordance to the 
10 defined filter rules and using a special direct interface to define these filter rules. 
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1 2. The invention of claim 1 wherein outbound packets keep in their headers physical 

2 addresses of the senders because the program that controls the network screen does not 

3 send outside local network physical addresses of its network interfaces. 

1 3. The invention of claim 1 wherein the network screen is based on a universal computer 

2 device with operational system and several network interfaces and special direct interface 

3 where network interfaces are Ethernet adapters and special control interface may be 

4 based on Ethernet interface type or on the base of sequential asynchronous interface. 

1 4. The invention of claim 1 wherein filter rules of the network screen disallow a transit 

2 delivery of any messages without special mark and address parameters in their headers. 

1 5. The invention of claim 1 wherein the access to the program of editing filter rules is 

2 protected by password. 

1 6. The invention of claim 1 wherein the network screen after processing the packet with 

2 filter rules keeps unchanged logical and physical addresses of the sender in the packet's 

3 header and it does not name network interfaces with logical addresses and does not send 

4 their physical addresses to the network segments connected with them while the network 

5 screen contains special direct interface to edit and tune filter rules where any changes of 

6 filter parameters may be processed only through this interface and the program of control 
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7 provides packet delivery from one network interface to another only when the 

8 information in the packet's header satisfies all filter requirements. 

1 7. Network screen of claim 6 wherein this screen is a special computer device with 

2 intemal operational system universal bus for data exchange between the interface 

3 adapters and a separate channel of control protected by password. 



